VDB

CVE-2022-37958

CVE-2022-37958 PUBLISHED CVSS 8.100000381469727 HIGH

SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability

EPSS 11.57% · 93.8th percentile

Risk Scores

CVSS 3.1
8.100000381469727
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
EPSS Score
11.57%
93.8th percentile

Affected Products

VendorProductVersions
MicrosoftWindows 76.1.0
MicrosoftWindows Server 201610.0.14393.0
MicrosoftWindows 10 Version 160710.0.14393.0
MicrosoftWindows 11 version 21H210.0.0
microsoftwindows_1021h1, 21h1, 21h2
MicrosoftWindows Server 2016 (Server Core installation)10.0.14393.0
microsoftwindows_server_20126.2.9200.0, r2, 6.2.9200.0
microsoftwindows_8.16.3.0
MicrosoftWindows Server 2019 (Server Core installation)10.0.17763.0
MicrosoftWindows Server 202210.0.20348.0
MicrosoftWindows Server 2012 (Server Core installation)6.2.9200.0
MicrosoftWindows Server 2012 R2 (Server Core installation)6.3.9600.0
microsoftwindows_server_2008_R26.1.7601.0, 6.1.7601.0
MicrosoftWindows 10 Version 150710.0.10240.0
microsoftwindows_10_20H210.0.0
MicrosoftWindows Server 2008 R2 Service Pack 1 (Server Core installation)6.1.7601.0
MicrosoftWindows Server 2008 R2 Service Pack 16.1.7601.0
microsoftwindows_11_21H210.0.0
microsoftwindows_11
microsoftwindows_server_2012_R26.3.9600.0, 6.3.9600.0

…and 19 more

Timeline

  • Sep 13, 2022 CVE Published
  • Sep 14, 2022 EPSS Score
  • Sep 17, 2022 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Mar 21, 2023 EPSS Score
  • Apr 9, 2023 EPSS Score
  • Apr 12, 2023 EPSS Score
  • May 8, 2023 EPSS Score
  • Nov 21, 2024 CVE Updated
  • Jan 29, 2025 EPSS Score
  • Feb 12, 2025 EPSS Score
  • Feb 25, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›